tgravescs commented on a change in pull request #23252: [SPARK-26239] File-based secret key loading for SASL. URL: https://github.com/apache/spark/pull/23252#discussion_r240348714
########## File path: docs/security.md ########## @@ -66,6 +66,50 @@ Kubernetes admin to ensure that Spark authentication is secure. </tr> </table> +Alternatively, one can mount authentication secrets using files and Kubernetes secrets that +the user mounts into their pods. + +<table class="table"> +<tr><th>Property Name</th><th>Default</th><th>Meaning</th></tr> +<tr> + <td><code>spark.authenticate.secret.file</code></td> + <td>None</td> + <td> + Path pointing to the secret key to use for securing connections. Ensure that the + contents of the file have been securely generated. This file is loaded on both the driver + and the executors unless other settings override this (see below). Review comment: similar add only supported on kubernetes ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
